Ransomware Gangs Exploit Unpatched SimpleHelp Flaws to Target Victims with Double Extortion
Ransomware Gangs Exploit Unpatched SimpleHelp Flaws to Target Victims with Double Extortion
13 June 2025
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday disclosed that ransomware actors are targeting unpatched SimpleHelp Remote Monitoring and Management (RMM) instances to compromise customers of an unnamed utility billing software provider.
"This incident reflects a broader pattern of ransomware actors targeting organizations through unpatched versions of SimpleHelp